[Evil Portal] WiFi Password Capture

[Powdersnow]

Hey guys, would just like to share with you a functional  Evil Portal that I have been messing around to work on the WiFi Pineapple MK7.

The attack method of choice is up to you on how you would like the target to connect to your Evil Twin in order to obtain the Access Point Password.

As time progresses this topic and the repo will be updated.

 

Link

https://github.com/alex-sesh/wifipass-capture

Screenshots

 

 

Notification and logs on the MK7 when a user enters the password  to the Access Point you are spoofing.

 

Demo

 

 

Edited July 5 by Powdersnow

[SithGecko]

Thank you for sharing.  Its always fun to play with new modules.

[Powdersnow]

On 4/6/2021 at 6:18 PM, SithGecko said:

Thank you for sharing.  Its always fun to play with new modules.

No problem, hope you enjoy it.

[JeroenV1982]

Very Nice, thanks for sharing!

[Powdersnow]

On 4/12/2021 at 6:58 AM, JeroenV1982 said:

Very Nice, thanks for sharing!

Appreciated!

[LuX]

Simple question, how do i install this, and run it?

[chrizree]

Install the Evil Portal module, copy the files from GitHub to a directory representing the module under /root/portals on the Mk7, then enable/start the Evil Portal module and activate the portal

[chill3r]

have you found on the new FW that the enable option doesnt work ???

[Powdersnow]

7 hours ago, chill3r said:

have you found on the new FW that the enable option doesnt work ???

I don't understand what you are saying.

But if it is what I think it is, when you download the folder from github, it would rename the folder to "wifipass-capture-master" something like that.

Before you go to evil portal to enable it, ensure that the word "master" is removed from the folder name and its just "wifipass-capture".

I've noticed this myself last week when I had to get a clean version of it off github.

 

The folder issue would be fixed in a small update forthcoming within the next 24 - 48 hours.

If after renaming it and it still doesn't enable, you would have to reset the pineapple to resolve the issue of any portals not activating. Unless someone has an alternative solution before resorting to a full reset of the Pineapple.

Edited May 13 by Powdersnow

[Powdersnow]

Changelog:

- Added SSID to the MK7 notification and .logs (Recon or PineAP must be on)
- Neaten up files into folders

 

 

Edited May 13 by Powdersnow

[l3z]

Hello,

i have troubles with this portal. if i copied into portals and activated, i will get error and the modul crashed every time and i must make a completly reset of mark 7

[b0N3z]

5 hours ago, l3z said:

Hello,

i have troubles with this portal. if i copied into portals and activated, i will get error and the modul crashed every time and i must make a completly reset of mark 7

same

[l3z]

Maybe because the folder named assets is not in this modul. the other ones use a folder named assets. but i don´t try it

[Powdersnow]

I re-downloaded the files from GitHub and uploaded it on the pineapple as a refresh portal and I'm seeing where the issue is. 

Changelog:

- Rename the folder to fix the case sensitive issue where the portal won't activate on the MK7

The issue was a small case sensitive naming of the folder as "wifipass-capture" was not the same as "Wifipass-Capture" as in the EP file which threw out the error message:

A simple fix would just to rename the folders as shown in my screenshot below.

AND to also delete all the files under /www/ BESIDES the captiveportal folder as seen where it relates to the Wifipass files.

With both steps being done, the Wifipass Captive portal will work and allow you to activate and deactivate the portal along with any other portals you may have.

Thanks for the feedback on letting me know there was an issue, much appreciated and my apologies for any inconvenience caused by having to reset the pineapple.

The github repo reflects the name change so that it works for anyone else moving forward.

[b0N3z]

Github to new portals?